Commit 82218c22 authored by Dustri's avatar Dustri

Fix stored XSS in fsearch

parent 10b9c26f
......@@ -82,7 +82,7 @@ class fsearchcache
{
if ($request[0] == '_')
$request = substr($request, 1);
return strtolower ($request);
return strtolower (htmlentities($request));
}
}
......@@ -92,4 +92,4 @@ function fsearch_revalidate_cache_for ($input)
$cache->must_revalidate_for ($input);
}
?>
\ No newline at end of file
?>
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment